In March 2018 one of NoedVPN’s data centers in Finland was “accessed with no authorization,” said NordVPN spokesperson Laura Tyrell. The attacker gained access to the server, which had been active for about a month. They exploited an insecure remote management system left by the data center provider; NordVPN said it was unaware that such a system existed. This is such a breakdown of physical security and poor patch management. IT is also disturbing that they are reporting in October 2019 for an incident in march.
Leave a Reply
You must be logged in to post a comment.